Long passwords are good, but too much length can be a DoS hazard
For more than a year, Ars has advised readers to use long, randomly generated passwords to protect their digital assets. Now comes definitive proof that too much password length can be detrimental to security.
Story added 17. September 2013, content source with full text you can find at link above.